Filtered Role

A filtered role is a dynamic role created through the use of an LDAP filter. All users are funneled through the filter and assigned to the role at the time of the role’s creation. The filter looks for any attribute value pair (for example, ca=user*) in an entry and automatically assign the users that contain the attribute to the role.

To Create a Filtered Role

1. In the Navigation pane, go the organization where the role will be created.

2. Click New.

3. Enter a name for the filtered role.

4. Enter the information for the search criteria.

   For example,

   (&(uid=user1)(|(inetuserstatus=active)(!(inetuserstatus=*))))

   If the filter is left blank, by default, the following role is created:

   (objectclass = inetorgperson)

5. Click Create to initiate the search based on the filter criteria. The identities defined by the filter criteria are automatically assigned to the role.

6. Once the filtered role is created click the name of the role to view the Users that belong to the role. You can also add services to the role by clicking the Services tab.